The latest enterprise risk management news from around the world

Businesses need to adopt ‘continuous adaptive risk and trust’ says Gartner

As businesses transform due to the digital revolution, approaches to security risk management will also need to change and, according to Gartner, continuous adaptive risk and trust assessment (CARTA) will be an important new development in this area.

To securely enable digital business initiatives in a world of advanced, targeted attacks, security and risk management leaders must adopt a CARTA approach to allow real-time, risk and trust-based decision making with adaptive responses, says Gartner.

As part of a CARTA approach:

  • Organizations must overcome the barriers between security teams and application teams;
  • Information security architects must integrate security testing at multiple points into DevOps workflows in a collaborative way that is largely transparent to developers, and preserves the teamwork, agility and speed of DevOps and agile development environments, delivering ‘DevSecOps’.

Gartner says that CARTA can also be applied at runtime with approaches such as deception technologies. Advances in technologies such as virtualization and software-defined networking has made it easier to deploy, manage and monitor ‘adaptive honeypots’ — the basic component of network-based deception.

Source: Gartner Identifies the Top 10 Strategic Technology Trends for 2018



Want news and features emailed to you?

Signup to our free newsletters and never miss a story.

   

A website you can trust

The entire Continuity Central website is scanned daily by Sucuri to ensure that no malware exists within the site. This means that you can browse with complete confidence.

Business continuity?

Business continuity can be defined as 'the processes, procedures, decisions and activities to ensure that an organization can continue to function through an operational interruption'. Read more about the basics of business continuity here.

Get the latest news and information sent to you by email

Continuity Central provides a number of free newsletters which are distributed by email. To subscribe click here.